Client-side monitoring techniques for web sites

Unlike existing password authentication mechanisms on the web that use passwords for client-side authentication only, password-authenticated key exchange (PAKE) protocols provide mutual authentication. In this article, we present an architecture to integrate existing PAKE protocols to the web. Our integration design consists of the client-side part and the server-side part. First, we implement the PAKE client-side functionality with a web browser plug-in, which provides a secure implementation base. The plug-in has a log-in window that can be customized by a user when the plug-in is installed. By checking the user-specific information in a log-in window, an ordinary user can easily detect a fake log-in window created by mobile code. The server-side integration comprises a web interface and a PAKE server. After a successful PAKE mutual authentication, the PAKE plug-in receives a one-time ticket and passes it to the web browser. The web browser authenticates itself by presenting this ticket over HTTPS to the web server. The plug-in then fades away and subsequent web browsing remains the same as usual, requiring no extra user education. Our integration design supports centralized log-ins for web applications from different web sites, making it appropriate for digital identity management. A prototype is developed to validate our design. Since PAKE protocols use passwords for mutual authentication, we believe that the deployment of this design will significantly mitigate the risk of phishing attacks.

Download Full-text

Traffic Properties, Client Side Cachability and CDN Usage of Popular Web Sites

Lecture Notes in Computer Science - Measurement, Modelling, and Evaluation of Computing Systems and Dependability and Fault Tolerance ◽

10.1007/978-3-642-12104-3_12 ◽

2010 ◽

pp. 136-150 ◽

Cited By ~ 9

Author(s):

Joachim Charzinski

Keyword(s):

Web Sites ◽

Client Side

Download Full-text

Developing Client-Side Mashups

International Journal of Ambient Computing and Intelligence ◽

10.4018/jaci.2013010103 ◽

2013 ◽

Vol 5 (1) ◽

pp. 34-52

Author(s):

Arto Salminen ◽

Tommi Mikkonen ◽

Feetu Nyrhinen ◽

Antero Taivalsaari

Keyword(s):

Software Development ◽

Web Sites ◽

Reference Architecture ◽

Web Based ◽

Starting Point ◽

Practical Experiences ◽

Client Side ◽

Insight Into

Software mashups that combine content from multiple web sites to an integrated experience are a popular trend. However, methods, tools and architectures for creating mashups are still rather undeveloped, and there is little engineering support behind them. In this paper the authors present guidelines that can serve as a helpful starting point for the design of new mashups. Guidelines focus mainly on mashup creation methods. Furthermore, they describe a reference architecture for client-side mashup development. In addition, the authors provide insight into mashup development based on their practical experiences in implementing various sample client-side mashup applications and tools for creating them. The long term goal of the authors’ work is to facilitate the development of compelling, robust and maintainable mashup applications, and more generally ease the transition towards web-based software development.

Download Full-text

Enhancing User Privacy in Adaptive Web Sites with Client-Side User Profiles

2008 Third International Workshop on Semantic Media Adaptation and Personalization ◽

10.1109/smap.2008.32 ◽

2008 ◽

Cited By ~ 4

Author(s):

Constantinos Kolias ◽

Vassilis Kolias ◽

Ioannis Anagnostopoulos ◽

Georgios Kambourakis ◽

Eleftherios Kayafas

Keyword(s):

Web Sites ◽

User Profiles ◽

User Privacy ◽

Client Side

Download Full-text

Client-side black-box monitoring for web sites

2017 IEEE 16th International Symposium on Network Computing and Applications (NCA) ◽

10.1109/nca.2017.8171343 ◽

2017 ◽

Cited By ~ 3

Author(s):

Ricardo Filipe ◽

Rui Pedro Paiva ◽

Filipe Araujo

Keyword(s):

Web Sites ◽

Black Box ◽

Client Side

Download Full-text

PAKE on the Web

International Journal of Information Security and Privacy ◽

10.4018/jisp.2009100103 ◽

2009 ◽

Vol 3 (4) ◽

pp. 29-42 ◽

Cited By ~ 3

Author(s):

Xunhua Wang ◽

Hua Lin

Keyword(s):

Web Sites ◽

Web Applications ◽

Identity Management ◽

Mutual Authentication ◽

Specific Information ◽

Mobile Code ◽

Web Browser ◽

Server Side ◽

Client Side ◽

The Web

Unlike existing password authentication mechanisms on the web that use passwords for client-side authentication only, password-authenticated key exchange (PAKE) protocols provide mutual authentication. In this article, we present an architecture to integrate existing PAKE protocols to the web. Our integration design consists of the client-side part and the server-side part. First, we implement the PAKE client-side functionality with a web browser plug-in, which provides a secure implementation base. The plug-in has a log-in window that can be customized by a user when the plug-in is installed. By checking the user-specific information in a log-in window, an ordinary user can easily detect a fake log-in window created by mobile code. The server-side integration comprises a web interface and a PAKE server. After a successful PAKE mutual authentication, the PAKE plug-in receives a one-time ticket and passes it to the web browser. The web browser authenticates itself by presenting this ticket over HTTPS to the web server. The plug-in then fades away and subsequent web browsing remains the same as usual, requiring no extra user education. Our integration design supports centralized log-ins for web applications from different web sites, making it appropriate for digital identity management. A prototype is developed to validate our design. Since PAKE protocols use passwords for mutual authentication, we believe that the deployment of this design will significantly mitigate the risk of phishing attacks.

Download Full-text